Lucene search
Veracode Vulnerability DatabaseVERACODE:36453HistoryJul 23, 2022 - 9:31 a.m.
Cross-Site Scripting (XSS)
2022-07-2309:31:25
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
41
request tracker
cross-site scripting
vulnerability
crafted attachment
arbitrary javascript
EPSS
0.001
Percentile
35.7%
Best Practical Request Tracker is vulnerable to cross-site scripting. The vulnerability exists via a crafted content type for an attachment which allows an attacker to inject and execute arbitrary javascript.
Related
osv
osv
request-tracker4 - security update
2022-07-13 00:00:00
request-tracker4 vulnerabilities
2023-12-04 18:07:01
cve
cve
CVE-2022-25802
2022-07-14 12:15:11
debian
debian
[SECURITY] [DSA 5181-1] request-tracker4 security update
2022-07-13 19:38:05
nvd
nvd
CVE-2022-25802
2022-07-14 12:15:11
prion
prion
Design/Logic Flaw
2022-07-14 12:15:00
openvas
openvas
Debian: Security Advisory (DSA-5181-1)
2022-07-15 00:00:00
Ubuntu: Security Advisory (USN-6529-1)
2023-12-05 00:00:00
debiancve
debiancve
CVE-2022-25802
2022-07-14 12:15:11
cvelist
cvelist
CVE-2022-25802
2022-07-14 11:49:40
nessus
nessus
ubuntucve
ubuntucve
CVE-2022-25802
2022-07-14 00:00:00
alpinelinux
alpinelinux
CVE-2022-25802
2022-07-14 12:15:11
ubuntu
ubuntu
Request Tracker vulnerabilities
2023-12-04 00:00:00